Title: IT Risk and Compliance Professional Location: Washington, DC Duration: 6+ Months Description The IT risk and compliance or IT audit professional will support Client's IT Risk & Compliance team in its efforts to establish an ongoing monitoring program over its information technology general controls (ITGCs) pervasive to our financial reporting objectives. Responsibilities include: + Executing test plans to evaluate the design and operating effectiveness of ITGCs + Evaluating test results to identify control gaps and control improvement opportunities + Perform monitoring activities to ensure that established controls continue to operate effectively over time + Assist with assessing risks and recommending control improvements + Prepare lead sheets, maintain audit documentation and working papers to support the conclusion reached + Draft findings and communicate recommendations Requirements + Bachelor's degree in accounting, accounting information systems or computer science. + 5 or more years of IT internal/external audit experience (internal audit or risk management experience with a public company is preferable) + CISA certification + Experience performing integrated audits + Familiarity with the risk-based audit approach + Familiarity with industry frameworks (e.g. COSO, COBIT, NIST, etc.), best practices and methodologies + Proven interpersonal skills + Demonstrated ability to execute and deliver under challenging circumstances + Excellent communication skills – written and oral + Strong hands-on experience with Sarbanes Oxley (SOX) compliance + Strong ITGC testing experience